VirusShare.com - Because Sharing is Caring

Home • Hashes • Research • About • Swag Shop

Account: Login

Please login to search and download.

System currently contains 114,977,305 malware samples.

Report for a sample recently added to the system:
b0c0e142ea62fc1106e9c87ed3edeaf2672c2b2f63ee980e234994f64bade96f
VirusShare info last updated 2026-07-13 00:00:03 UTC
Detected by 29 engines  
MD52e8ff5b9b5a8e5e3432a78689ffa28c9
SHA17e1870ef37238d44f308451210d5eca01bd56ded
SHA256b0c0e142ea62fc1106e9c87ed3edeaf2672c2b2f63ee980e234994f64bade96f
SSDeep3072:TxucEu6xTrEbICtI7DTcAOx/EmT3kg30eIhCWSCu1NIopzqth5Lt6VRvKxi:TYdrEhtI7DTkx/hT393pJT1zTXYi
Authentihash7649ff3e0cc7a5dbcf4c7ea4683f9913a33f6515b467e63fbf8e8934a5075ca1
Size9,250,906 bytes
File TypePE32 executable (GUI) Intel 80386, for MS Windows
Mime Typeapplication/x-dosexec
Extensionexe
TrIDWindows Control Panel Item (generic) (31.4%)
InstallShield setup (23.5%)
Win32 Executable MS Visual C++ (generic) (17.0%)
Microsoft Visual C++ compiled executable (generic) (9.0%)
Win64 Executable (generic) (5.7%)
Detections
(29/70)
APEXMalicious
AVGWin32:Malware-gen
AhnLab-V3Malware/Win.Swisyn.R781210
Antiy-AVLTrojan/Win32.Swisyn
AvastWin32:Malware-gen
BkavW32.Malware.C7EDA10D
ClamAVWin.Malware.Swisyn-7008263-0
CrowdStrikewin/malicious_confidence_90% (D)
CylanceUnsafe
CynetMalicious (score: 100)
DeepInstinctMALICIOUS
DrWebTrojan.Muldrop8.54295
Elasticmalicious (high confidence)
FortinetW32/Swisyn.R!tr
GoogleDetected
GridinsoftTrojan.Heur!.03202201
Kingsoftmalware.kb.a.991
MalwarebytesMalware.AI.3905647283
MaxSecureTrojan.Malware.121218.susgen
McAfeeDReal Protect-LS!2E8FF5B9B5A8
MicrosoftTrojan:Win32/RootkitRevealer.SL!MTB
NANO-AntivirusTrojan.Win32.Swisyn.eyqdml
PandaTrj/Genetic.gen
SangforTrojan.Win32.Save.a
SentinelOneStatic AI - Malicious PE
SophosML/PE-A
SymantecML.Attribute.HighConfidence
VaristW32/Swisyn.R.gen!Eldorado
WebrootW32.Trojan.Gen
VirusTotal Report submitted 2026-06-24 21:39:25 UTC
ExIF Data
CharacterSetUnicode
CodeSize151552
Comments
CompanyNameSysinternals - www.sysinternals.com
EntryPoint0x8adef3
FileDescriptionRootkit detection utility
FileFlags(none)
FileFlagsMask0x003f
FileOSWindows NT 32-bit
FileSize8.8 MB
FileSubtype0
FileTypeWin32 EXE
FileTypeExtensionexe
FileVersion1.7
FileVersionNumber1.70.0.0
ImageFileCharacteristicsExecutable, No line numbers, No symbols, 32-bit
ImageVersion0
InitializedDataSize102400
InternalName
LanguageCodeEnglish (U.S.)
LegalCopyrightCopyright (C) 2005-2006 Bryce Cogswell and Mark Russinovich
LegalTrademarks
LinkerVersion6
MIMETypeapplication/octet-stream
MachineTypeIntel 386 or later, and compatibles
OSVersion4
ObjectFileTypeExecutable application
OriginalFileName
PETypePE32
PrivateBuild
ProductNameSysinternals Rootkitrevealer
ProductVersion1.7
ProductVersionNumber1.70.0.0
SpecialBuild
SubsystemWindows GUI
SubsystemVersion4
TimeStamp2006:02:01 23:02:14+00:00
UninitializedDataSize0